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WHAT IS CLAIMED IS: 

1 y. A computer- implemented method of managing bandwidth: 

2 (/ receiving packets on an input port; 

3 classifying received packets in a classification 

4 engine ; 

5 processing the classified packets in a processing 

6 system; and 

7 queuing packets in a queuing engine. 

1 2. The computer- implemented method of claim 1 wherein 

2 the packets comprise network packets. 

1 3. The computer- implemented method of claim 2 wherein 

2 the network packets comprise traffic types. 

1 4. The computer- implement method of claim 3 wherein the 

2 traffic types comprise wide area network (WAN) traffic 

3 destined for a local area network (LAN) . 

1 5. The computer- implemented method of claim 3 wherein 

2 the traffic types comprise local area network (LAN) traffic 

3 destined for a wide area network (WAN) . 

1 6. The computer- implemented method of claim 1 wherein 

2 classifying comprises: 

3 generating hash values based on components of the 

4 network packets; and 
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5 determining corresponding classes for the hash 

6 values. 

1 7. The computer- implemented method of claim 6 wherein 

2 the components comprise 5-tuples. 

1 8. The computer- implemented method of claim 7 wherein 

2 the 5-tuples comprise destination addresses, destination 

3 ports, source addresses, source ports and protocol numbers. 

1 9. The computer- implemented method of claim 1 wherein 

2 processing system comprises rate shaping packet processing. 

1 10. The computer- implemented method of claim 9 wherein 

2 rate-shaping processing comprises: 

3 determining whether class borrowing is enabled for 

4 the class assigned to the packet; 

5 determining an advertised window size for a class 

6 that has class borrowing disabled by the algorithm: 

7 C = B / (n) (D) 

8 where C is the capacity of the class, B is the class 

9 bandwidth, n is the number of currently active connections and 

10 D is an estimate of round trip time of the connection; and 

11 determining an advertised window size for a class 

12 that has class borrowing enabled by the algorithm: 

13 C = B 1 / (n) (D) 

14 where B 1 is the maximum of class bandwidth and burst 

15 bandwidth. 
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1 11. The computer- implemented method of claim 1 wherein 

2 processing comprises session bandwidth packet processing. 

1 12. The computer- implemented method of claim 1 wherein 

2 session bandwidth packet processing comprises: 

3 generating a new class for the packet class if a 

4 packet class specifies a guaranteed minimum bandwidth; 

5 assigning the new class the guaranteed minimum 

6 bandwidth; and 

7 generating a 5-tuple filter for the new class. 

1 13. The computer- implemented method of claim 12 wherein 

2 the 5-tuple filter comprises a destination address of the 

3 packet, a destination port of the packet, a source address of 

4 the packet, a source port and a protocol of the packet. 

1 14. The computer- implemented method of claim 1 wherein 

2 processing comprises admission control packet processing. 

1 15. The computer- implemented method of claim 1 wherein 

2 admission control packet processing comprises session: 

3 receiving a connection; 

4 determining a class for the connection; 

5 determining whether there is sufficient bandwidth 

6 for the class to guarantee a minimum bandwidth; 

7 determining an admission directive from the class; 

8 and 
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9 processing the packets in the connection in response 

10 to the admission directive. 

1 16. The computer- implemented method of claim 15 wherein 

2 the admission directive is squeeze. 

1 17. The computer- implemented claim of 16 wherein 

2 processing comprises reclassifying the packet to a default 

3 class. 

1 18. The computer- implemented method of claim 15 wherein 

2 the admission directive is drop. 

1 19. The computer- implemented claim of 18 wherein 

2 processing comprises dropping the connection. 

1 20. The computer- implemented method of claim 15 wherein 

2 the admission directive is deny. 

1 21. The computer- implemented claim of 2 0 wherein 

2 processing comprises generating a reset packet. 

1 22. The computer- implemented method of claim 1 wherein 

2 processing comprises type of service (TOS) packet processing. 

1 23. The computer- implemented method of claim 1 wherein 

2 TOS packet processing comprises changing TOS values to match 

3 underlying application. 
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1 24. The computer- implemented method of claim 1 wherein 

2 processing comprises: 

3 session bandwidth packet processing; 

4 rate shaping packet processing; 

5 admission control packet processing; and 

6 TOS packet processing. 

1 25. The computer- implemented method of claim 1 wherein 

2 queuing comprises placing processed packets in queues 

3 according to classes. 

1 ^> \ A bandwidth management system comprising: 

2 an input port, the input port connected to a 

3 classification engine; 

4 a processing engine, the processing engine connected 

5 to the classification engine; and 

6 a queuing engine connected to the processing engine 

7 and to an output port . 

1 27. The bandwidth management system of claim 26 wherein 

2 the processing engine comprises : 

3 session bandwidth engine. 

4 a rate -shaping engine; 

5 an admission control engine; and 

6 TOS processing engine. 
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1 28. The bandwidth management system of claim 2 6 further 

2 comprising a policy manager connected to the processing and 

3 queuing engine. 

1 29. The bandwidth management system of claim 2 8 wherein 

2 the policy manager is an input device providing parameters. 

30. The bandwidth management system of claim 2 9 wherein 
the parameters comprise a class bandwidth and class priority. 

A computer- implemented method of managing bandwidth 
comprising : 

classifying network packets according to traffic 
types for placement in class queues; 

generating parent classes for each class; 
allocating parent bandwidths to the parent classes; 
assigning a parent priorities to the parent classes; 
generating sub-parent classes for each parent class; 

and 

providing a minimum bandwidth to the sub -parent 

classes . 

1 32. The computer- implemented method of claim 31 wherein 

2 the minimum bandwidth is the parent bandwidth. 

1 33. The computer- implemented method of claim 31 wherein 

2 the sub-parent classes borrow bandwidth from the parent class. 
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1 34. The computer- implemented method of claim 31 further 

2 comprising processing the packets in a connection in response 

3 to an admission directive. 

1 35. The computer- implemented method of claim 34 wherein 

2 the admission directive is squeeze. 

1 36. The computer- implemented claim of 3 5 wherein 

2 processing comprises reclassifying the packet to a default 

3 class. 

1 37. The computer- implemented method of claim 34 wherein 

2 the admission directive is drop. 

1 38. The computer- implemented claim of 3 7 wherein 

2 processing comprises dropping the connection. 

1 39. The computer- implemented method of claim 34 wherein 

2 the admission directive is deny. 

1 40. The computer- implemented of claim 39 wherein 

2 processing comprises generating a reset packet. 

1 41. The computer- implemented method of claim 1 further 

2 comprising receiving parameters from a policy manager. 
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1 42. The computer- implemented method of claim 41 wherein 

2 the parameters comprise a class bandwidth and a class 

3 priority. 

1 43. The computer- implemented method of claim 1 further 

2 comprising : 

3 queuing the processed packets in a queuing engine; 

4 and 

5 scheduling the queued packets on an output port. 
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